Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KE-ING/PsMBHwCsA0t3zuS6c_sBym4Bgn4.roa
File: PsMBHwCsA0t3zuS6c_sBym4Bgn4.roa (raw, json)
Hash identifier: Bej8XQWLKhvqGv9vA1Q+a93lRVaU7dK+Kgh/m9ih9Y8=
Subject key identifier: 3E:C3:01:1F:00:AC:03:4B:77:CE:E4:BA:73:FB:01:CA:6E:01:82:7E
Certificate issuer: /CN=999BBE131DF5D346F27627CC4F8FA9FB57581929
Certificate serial: 0C04
Authority key identifier: 99:9B:BE:13:1D:F5:D3:46:F2:76:27:CC:4F:8F:A9:FB:57:58:19:29
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/mZu-Ex3100bydifMT4-p-1dYGSk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/PsMBHwCsA0t3zuS6c_sBym4Bgn4.roa
Signing time: Fri 01 Sep 2023 09:11:53 +0000
ROA not before: Fri 01 Sep 2023 09:11:53 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 18042
IP address blocks: 119.14.0.0/17 maxlen: 17
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3076 (0xc04)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=999BBE131DF5D346F27627CC4F8FA9FB57581929
Validity
Not Before: Sep 1 09:11:53 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=3EC3011F00AC034B77CEE4BA73FB01CA6E01827E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:7b:56:d7:92:34:0d:8b:e2:42:ba:9e:7b:b8:
2d:39:bd:c5:f0:38:39:e4:a2:20:c7:63:8f:09:30:
07:75:05:ea:b4:56:22:8e:7e:56:c2:00:be:07:5f:
d4:5e:2a:c2:02:71:c6:91:ef:27:9d:b8:ff:f0:78:
d9:ba:61:7b:ec:e3:ff:81:81:fb:cc:67:50:62:61:
eb:d9:0d:99:93:47:09:cc:74:fb:5f:10:12:3c:b2:
9b:4c:f6:76:8d:a3:57:3f:80:a4:ce:c9:1d:48:0c:
15:d3:da:20:9b:c9:17:14:8d:c7:78:07:21:d3:29:
92:1c:94:5d:ff:a5:ea:96:e0:7a:d1:22:1e:9b:c5:
bf:29:ce:42:7e:83:ad:9e:0a:9f:a1:af:fa:47:6b:
9a:69:29:a2:43:cf:f9:ca:82:a9:ed:20:eb:3f:70:
17:69:ef:8a:2e:b2:ad:65:47:36:d4:4d:67:fb:3a:
6f:ad:83:60:54:48:f1:2a:f2:3c:e2:8b:51:85:6b:
cf:57:1d:da:49:9c:9b:b4:ca:0e:02:12:19:0e:d9:
72:e5:4b:1a:86:e4:78:71:9f:4b:62:53:a8:e4:40:
dd:b2:b3:85:b0:be:fe:87:47:f0:61:dc:23:5d:da:
f0:ff:cc:15:bd:a7:f3:14:55:cd:97:e7:ff:a9:e9:
f4:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:C3:01:1F:00:AC:03:4B:77:CE:E4:BA:73:FB:01:CA:6E:01:82:7E
X509v3 Authority Key Identifier:
keyid:99:9B:BE:13:1D:F5:D3:46:F2:76:27:CC:4F:8F:A9:FB:57:58:19:29
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/mZu-Ex3100bydifMT4-p-1dYGSk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/mZu-Ex3100bydifMT4-p-1dYGSk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/PsMBHwCsA0t3zuS6c_sBym4Bgn4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
119.14.0.0/17
Signature Algorithm: sha256WithRSAEncryption
8a:52:c6:79:d2:78:d1:98:17:b3:6c:07:9c:f6:1c:36:95:f5:
7f:58:bc:4f:f9:a1:cc:25:2c:09:62:1c:0d:e6:0f:67:0c:f4:
92:7a:46:2d:fe:15:b4:d5:26:88:64:e6:5f:a6:54:0c:34:0b:
90:e7:52:de:c3:a5:5a:53:a0:7d:90:18:3e:76:5f:ce:2c:07:
70:ea:d6:15:b2:9f:be:0c:d4:dc:11:f8:b1:99:37:e8:0a:37:
74:eb:ce:9d:b0:8d:51:0c:97:33:15:b2:17:6b:34:d7:df:fc:
61:f6:c9:6f:ef:ca:f8:56:7d:48:ae:01:ef:6c:e7:10:f7:f0:
0c:1e:d0:8b:2b:15:90:fa:af:15:d6:a1:fa:bc:25:c9:d5:0c:
82:f1:20:62:1d:bf:76:2a:9e:22:99:ed:c0:86:fd:e4:5a:77:
5d:88:b8:90:2b:84:96:03:50:28:83:91:db:80:50:ac:27:eb:
c6:54:1e:bb:1b:5a:ca:bf:78:f4:e4:0f:57:64:ad:fe:fc:13:
f7:60:e8:60:b4:dd:4b:a8:af:96:e7:3f:d8:d3:56:32:5f:97:
29:86:cd:03:62:a3:d7:61:bd:3e:d2:dd:bd:ff:9f:77:01:4f:
dd:f4:9c:b9:8d:1b:4a:79:a8:4d:32:1b:4a:74:6b:63:30:be:
d5:62:a6:04
-----BEGIN CERTIFICATE-----
MIIE0jCCA7qgAwIBAgICDAQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoOTk5
QkJFMTMxREY1RDM0NkYyNzYyN0NDNEY4RkE5RkI1NzU4MTkyOTAeFw0yMzA5MDEw
OTExNTNaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDNFQzMwMTFGMDBBQzAz
NEI3N0NFRTRCQTczRkIwMUNBNkUwMTgyN0UwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCqe1bXkjQNi+JCup57uC05vcXwODnkoiDHY48JMAd1Beq0ViKO
flbCAL4HX9ReKsICccaR7yeduP/weNm6YXvs4/+BgfvMZ1BiYevZDZmTRwnMdPtf
EBI8sptM9naNo1c/gKTOyR1IDBXT2iCbyRcUjcd4ByHTKZIclF3/peqW4HrRIh6b
xb8pzkJ+g62eCp+hr/pHa5ppKaJDz/nKgqntIOs/cBdp74ousq1lRzbUTWf7Om+t
g2BUSPEq8jzii1GFa89XHdpJnJu0yg4CEhkO2XLlSxqG5Hhxn0tiU6jkQN2ys4Ww
vv6HR/Bh3CNd2vD/zBW9p/MUVc2X5/+p6fTNAgMBAAGjggHuMIIB6jAdBgNVHQ4E
FgQUPsMBHwCsA0t3zuS6c/sBym4Bgn4wHwYDVR0jBBgwFoAUmZu+Ex3100bydifM
T4+p+1dYGSkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvS0UtSU5H
L21adS1FeDMxMDBieWRpZk1UNC1wLTFkWUdTay5jcmwwYAYIKwYBBQUHAQEEVDBS
MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD
Q0EvbVp1LUV4MzEwMGJ5ZGlmTVQ0LXAtMWRZR1NrLmNlcjAOBgNVHQ8BAf8EBAMC
B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj
YS50d25pYy50dy9ycGtpL1RXTklDQ0EvS0UtSU5HL1BzTUJId0NzQTB0M3p1UzZj
X3NCeW00QmduNC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50
dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAd3
DgAwDQYJKoZIhvcNAQELBQADggEBAIpSxnnSeNGYF7NsB5z2HDaV9X9YvE/5ocwl
LAliHA3mD2cM9JJ6Ri3+FbTVJohk5l+mVAw0C5DnUt7DpVpToH2QGD52X84sB3Dq
1hWyn74M1NwR+LGZN+gKN3Trzp2wjVEMlzMVshdrNNff/GH2yW/vyvhWfUiuAe9s
5xD38Awe0IsrFZD6rxXWofq8JcnVDILxIGIdv3YqniKZ7cCG/eRad12IuJArhJYD
UCiDkduAUKwn68ZUHrsbWsq/ePTkD1dkrf78E/dg6GC03Uuor5bnP9jTVjJflymG
zQNio9dhvT7S3b3/n3cBT930nLmNG0p5qE0yG0p0a2MwvtVipgQ=
-----END CERTIFICATE-----
Generated at Mon Aug 26 10:35:14 2024 by rpki-client on console-ams.rpki-client.org